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1 Interactive presentation: Automatic model g eneration for black box real- 
time systems 

Thomas Huining Feng, Lynn Wang, Wei Zheng, Sri Kanajan, Sanjit A. Seshia 
April 2007 DATE "07: Proceedings of the conference on Design, automation and 

test in Europe 
Publisher: EDA Consortium 

Full text available:^ pdf(224. 87 KB) Additional Information: full citation , abstract , references 

Embedded systems are often assembled from black box components. 
System-level analyses, including verification and timing analysis, typically 
assume the system description, such as RTL or source code, as an input. 
There is therefore a need to automatically ... 
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Zhi Zheng, Tony K. Y. Chan 

November 2005 GRAPHITE '05: Proceedings of the 3rd international conference 
on Computer graphics and interactive techniques in Australasia 
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We propose a non-redundant DAG hierarchy for view-dependent 
multiresolution mesh for client-server based online browsing of triangle mesh 
models. The multiresolution hierarchy and the selectively refined mesh for 
rendering are two relatively independent ... 
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conference on Object-oriented programming, systems, languages, 
and applications 
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We describe (and demonstrate) the execution model of a computing platform 
where computation is both incremental and data-driven. We call such an 
approach delta-driven. The platform is intended as a delivery vehicle for 
semantically ... 

Keywords: adaptive functions, delta-driven execution, incremental 
computation, lazy memoization, relational programming 
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Portable resource control in Java 
Walter Binder, Jane G. Hulaas, Alex Villazon 

October 2001 OOPSLA '01: Proceedings of the 16th ACM SIGPLAN conference 
on Object oriented programming, systems, languages, and 
applications 
Publisher: ACM 

Full text available: f£l pdf( 307.08 KB ) Additional Information: full citation , abstract, references , 
L - ^ cited by . index terms 

Preventing abusive resource consumption is indispensable for all kinds of 
systems that execute untrusted mobile coee, such as mobile object sytems, 
extensible web servers, and web browsers. To implement the required 
defense mechanisms, some support for ... 

Keywords: Java, bytecode rewriting, micro-kernels, mobile object systems, 
resource control, security 

Using model checkin g to find serious file system errors 
Junfeng Yang, Paul Twohey, Dawson Engler, Madanlal Musuvathi 
November 2006 ACM Transactions on Computer Systems (TOCS), volume 24 
Issue 4 

Publisher: ACM 

Full text available: f£ l Pdf(534.00 KB) Additional Information: full citation , abstract, references , 
]LJr ^ index terms 

This article shows how to use model checking to find serious errors in file 
systems. Model checking is a formal verification technique tuned for finding 
corner-case errors by comprehensively exploring the state spaces defined by 
a system. File systems ... 

Keywords: Model checking, crash, file system, journaling, recovery 

6 Multiversion-based view maintenance over distributed data sources 
Songting Chen, Bin Liu, Elke A. Rundensteiner 

December 2004 ACM Transactions on Database Systems (TODS), Volume 29 
Issue 4 

Publisher: ACM 

Additional Information: full citation , a ppendices and 
Full text available: ^g[_pdf(480.72 KB) supplements , abstract , references . 

cited by , index terms , review 

Materialized views can be maintained by submitting maintenance queries to 
the data sources. However, the query results may be erroneous due to 
concurrent source updates. State-of-the-art maintenance strategies typically 
apply compensations to resolve ... 

Keywords: View maintenance, transaction processing 
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service-oriented architectures 

Agreiter Berthold, Muhammad Alam, Ruth Breu, Michael Hafner, Alexander 
Pretschner, Jean-Pierre Seifert, Xinwen Zhang 

November 2007 SWS '07: Proceedings of the 2007 ACM workshop on Secure 
web services 

Publisher: ACM 

Full text available: fB Pdf(647.83 KB) Additlonal Information: full citation , abstract, references , 
yu index terms 

We present an approach to modeling and enforcing usage control 
requirements on remote clients in service-oriented architectures. Technically, 
this is done by leveraging a trusted software stack relying on a hardware - 
based root of trust and a trusted ... 

Keywords: SOA, access control, policies, trusted computing, usage control 



8 A model of OASIS role-based access control and its support for active 
security 

Jean Bacon, Ken Moody, Walt Yao 

November 2002 ACM Transactions on Information and System Security 
(TISSEC), Volume 5 Issue 4 

Publisher: ACM 

Full text available:^ Pdf(352.06 KB) Additional Information: full citation , abstract, references , 

cited by . index terms 

OASIS is a role-based access control architecture for achieving secure 
interoperation of services in an open, distributed environment. The aim of 
OASIS is to allow autonomous management domains to specify their own 
access control policies and to interoperate ... 

Keywords: Certificates, OASIS, RBAC, distributed systems, policy, role- 
based access control, service-level agreements 



9 Specification and verification of security requirements in a prog ramming 

Jk, model for decentralized CSCW systems 
^ Tanvir Ahmed, Anand R. Tripathi 

May 2007 ACM Transactions on Information and System Security 
(TISSEC), Volume 10 Issue 2 

Publisher: ACM 

Full text available: ffl pdff746.89 KB) Additional information: full citation , abstract, references, 
^ index terms 

We present, in this paper, a role-based model for programming distributed 
CSCW systems. This model supports specification of dynamic security and 
coordination requirements in such systems. We also present here a model- 
checking methodology for verifying ... 

Keywords: Security policy specification, finite state-based model checking, 
methodology for access-control policy design, role-based access control 
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<g> [extended abstract] 

^ Anindya Banerjee, David A. Naumann 

January 2002 POPL '02: ACM SIGPLAN Notices, Volume 37 issue l 

Publisher: ACM 

Full text available: fiS W(262.80 KB) Additional Information: full citation , abstract, references , 
i£ - H ^ cited bv 



http://portal.acm.org/resuits.cfm?coll=ACM&dl=ACM&CFID=l 3 1 57205&CFTOKEN=71 897 1 1 0 



1/22/2008 



Results (page 1): +model* +view* ^control* ^runtime 



Denotational semantics is given for a Java-like language with pointers, 
subclassing and dynamic dispatch, class oriented visibility control, recursive 
types and methods, and privilege-based access control. Representation 
independence (relational parametricity) ... 



11 Providing hi g h-level control and expert assistance in the user interface 

^ presentation desig n 

^ Won Chul Kim, James D. Foley 

May 1993 CHI '93: Proceedings of the INTERACT '93 and CHI '93 conference on 
Human factors in computing systems 

Publisher: ACM 

Full text available: ffipdffl18.49 KB) Additional Information: full citation , abstract, references , 
v-*^ cited by , index terms 

Current user interface builders provide only low-level assistance, because 
they have knowledge of neither the application, nor the principles by which 
interface elements are combined effectively. We have developed a 
framework that unites the knowledge ... 

Keywords: UI design process, automatic layout, knowledge-based tool 



12 A historical perspective on runtime assertion checkin g in software 

development 
^ Lori A. Clarke, David S. Rosenblum 

May 2006 ACM SIGSOFT Software Engineering Notes, volume 31 issue 3 
Publisher: ACM 

|| .. . . co Additional Information: full citation , abstract , references , 

Full text available: TO pdf(473.68 KB) — — ~ — 

liL - H ^ index terms 

This report presents initial results in the area of software testing and analysis 
produced as part of the Software Engineering Impact Project. The report 
describes the historical development of runtime assertion checking, including 
a description of the ... 



13 A framework for concrete reput ation-s ystems with applications to history - 
a based access control 

^ Karl Krukow, Mogens Nielsen, Vladimiro Sassone 

November 2005 CCS '05: Proceedings of the 12th ACM conference on Computer 
and communications security 

Publisher: ACM 

r- „ * * •. u. « ^n C7 C n i/d\ Additional Information: full citation , abstract , references , 

Full text available: TO pdf(257.53 KB) — — ; 

u-y*^ index terms 

In a reputation-based trust-management system, agents maintain 
information about the past behaviour of other agents. This information is 
used to guide future trust-based decisions about interaction. However, while 
trust management is a component in security ... 

Keywords: history-based access control, model checking, reputation, 
temporal logic, trust management 



14 Discretionary access control with the administrative role g raph model 
He Wang, Sylvia L. Osborn 

June 2007 SACMAT '07: Proceedings of the 12th ACM symposium on Access 
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control models and technologies 
<W Publisher: ACM 

Full text available: jfl odff 188.43 KB) Additional information: full citation, abstract, references , 
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Previous research examining the mapping of discretionary access control 
(DAC) to role-based access control (RBAC) has considered neither ownership 
nor further granting of privileges. We show how to accomplish this by 
mapping from a relational database ... 

Keywords: DAC, role graph model, role-based access control 



15 Control-flow integrity 

Martin Abadi, Mihai Budiu, Ulfar Erlingsson, Jay Ligatti 

November 2005 CCS '05: Proceedings of the 12th ACM conference on Computer 
and communications security 

Publisher: ACM 

Full text available: « pdf(218.60 KB) Additional Information: full citation , abstract, references , 
^ cited by , index terms 

Current software attacks often build on exploits that subvert machine-code 
execution. The enforcement of a basic safety property, Control-Flow Integrity 
(CFI), can prevent such attacks from arbitrarily controlling program 
behavior. CFI enforcement is ... 

Keywords: binary rewriting, control-flow graph, inlined reference monitors, 
vulnerabilities 



16 Model Checking Implicit-Invoca tion Systems 
David Garlan, Serge Khersonsky 

November 2000 IWSSD 'OO: Proceedings of the 10th International Workshop on 

Software Specification and Design 
Publisher: IEEE Computer Society 

Full text available: _ MA 0>j nQ (fjjl e . t Additional Information: full citation , 

■@ j)df(134.08 KB) P Publisher Site abstract , cited by 

While implicit invocation (publish-subscribe) systems have good engineering 
properties, they are difficult to reason about and to test. Model checking 
such systems is an attractive alternative. However, it is not clear what kinds 
of state models are ... 

Keywords: Implicit invocation, publish-subscribe, model checking 



17 Model-carry ing code: a practical approach for safe execution of untrusted 
<g> a pplications 

^ R. Sekar, V.N. Venkatakrishnan, Samik Basu, Sandeep Bhatkar, Daniel C. 
DuVarney 

December 2003 SOSP '03: ACM SIGOPS Operating Systems Review, volume 
37 Issue 5 

Publisher: ACM 

Full text available: fflpdff 301 .30 KB) Additional Information: full citation , abstract, references , 
L - 3 cited by . index terms 

This paper presents a new approach called model-carrying code (MCC) for 
safe execution of untrusted code. At the heart of MCC is the idea that 
untrusted code comes equipped with a concise high-level model of its 
security-relevant behavior. This ... 
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Keywords: mobile code security, policy enforcement, sand-boxing, security 
policies 

18 A model-driven approach to performability analysis of dynamically 
reconfi g urable component-based systems 

^ Vincenzo Grassi, Raffaela Mirandola, Antonino Sabetta 

February 2007 WOSP '07: Proceedings of the 6th international workshop on 

Software and performance 
Publisher: ACM 

Full text available: « pdf(420.26 KB) Additional Information: full citation , abstract, references , 
l£_J " index terms 

Dynamic reconfiguration techniques appear promising to build component- 
based (C-B) systems for application domains that have strong adaptability 
requirements, like the mobile and the service-oriented computing domains. 
However, introducing dynamic reconfiguration ... 

Keywords: dynamic reconfiguration, model-driven development, 
performability 

19 Applying model-inte g rated computing to component middleware and 
Jj^ enterprise applications 

^ Aniruddha Gokhale, Douglas C. Schmidt, Balachandran Natarajan, Nanbor Wang 
October 2002 Communications of the ACM, volume 45 issue 10 
Publisher: ACM 

Additional Information: full citation . 

Full text available: 1f| pdf( 1 44.29 KB) html(46.13 KB) abstract, 

b - J ~ references , cited 

by, index terms 

Combining the best elements of these two technologies can address the key 
challenges associated with developing enterprise applications. 



20 A dynamic information flow model of secure systems 
H> Jianjun Shen, Sihan Qing 

March 2007 ASIACCS '07: Proceedings of the 2nd ACM symposium on 

Information, computer and communications security 
Publisher: ACM 

Full text available: S pdff2?1.81 KB) Additional Information: full citation , abstract, references , 
a index terms 

We characterize the information flow features of an information system in a 
state machine model, which emphasizes on the subject properties of 
information flows. We ague that the legality of a flow mainly depends on the 
subjects exploit it rather than 

Keywords: access control, covert channel, information flow, security policy 
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